Errata=====The original version of this Security Advisory listed the vulnerable versions incorrectly. Whereas the original GLSA listed vulnerable versions as "<= 1.4.2" it should have in fact been listed as "< 1.4.3_rc1". The corrected "Affected Packages" section appears below.